Nicholas Robert - The CyberSignal (Page 2)

Flat white line-art of a mobile gateway box with an open hatch and a clock face, on a Brick Rust background — Ivanti Sentry critical flaws.

Vulnerabilities

Ivanti Sentry Critical Flaws Exploited 24 Hours After Disclosure

Twenty-four hours separated disclosure from in-the-wild exploitation — CISA's emergency directive gives federal agencies three days to patch.

Flat white line-art of a university building and a database server linked by a broken padlock, on a Royal Violet background — Oracle PeopleSoft zero-day.

Vulnerabilities

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) — 100+ Organizations Breached

Google Threat Intelligence confirmed mass exploitation of an Oracle PeopleSoft zero-day by ShinyHunters; universities are the primary target and the extortion has begun.

Flat white line-art of a compass needle turning to point back at a single building, on a Terracotta background — OceanLotus domestic targeting.

Nation-State Cyber Threats

ESET Publishes OceanLotus (APT32) Research Update — Domestic Targeting in Vietnam

ESET's research update reframes OceanLotus — the targeting is now inward.

Flat white line-art of a courthouse and a gavel, on a Midnight Navy background — DOJ charges in the Void Blizzard case.

Nation-State Cyber Threats

US Justice Department Charges Russian National in Void Blizzard Case

Another indictment in a Russia-aligned case — but unlike most, this defendant is already in US custody after an extradition from Thailand.

Ransomware

"The Gentlemen" Ransomware Claims 478 Victims and Spreads Like a Worm

A ransomware group that spreads like a worm and counts 478 victims — and the Krebs investigation now identifying the people running it.

Flat white line-art of an opened archive folder spilling a single document, on an Oxblood background — WinRAR flaw exploited against Ukraine.

Nation-State Cyber Threats

WinRAR Flaw Exploited by Russia-Aligned Groups Against Ukrainian Organizations

Consumer compression software remains a reliable initial-access vector in the Russia-Ukraine cyber theater.

Flat white line-art of a sorting funnel routing shapes onto fast and slow tracks, on a Mulberry background — CISA BOD 26-04 risk-based patching.

Policy & Government

CISA Rewrites Federal Patching with BOD 26-04 — Patch by Risk, Fix Criticals in 3 Days

CISA's new directive ends CVSS-led patching for federal agencies — risk becomes the prioritization signal, and the most dangerous bugs must be patched in three days.

Flat white line-art of a giant calendar shield holding three keys, on a Midnight Navy background — Microsoft's record 206-CVE June 2026 Patch Tuesday.

Vulnerabilities

Microsoft's Record 206-CVE Patch Tuesday and the Nightmare Eclipse Zero-Days

The largest Patch Tuesday on record arrives with three publicly disclosed zero-days — and a running feud with one researcher producing a steady stream of Microsoft exploits.

Flat white line-art of a central hub linked to scattered small devices, on an Olive background — China-linked JDY botnet disclosure.

Nation-State Cyber Threats

Researchers Disclose Growth of China-Linked JDY Botnet

A small-footprint, long-tail Chinese proxy network grows past 1,500 devices — defenders should account for this layer of reconnaissance infrastructure.

Editorial science-poster illustration of MITRE ATT&CK symbols — a matrix grid, a chess piece, a labeled index card, a magnifying lens, a masked silhouette, and a shield.

Cybersecurity 101

What Is the MITRE ATT&CK Framework? A Guide for Defenders

A defender's guide to the MITRE ATT&CK framework — what it is, how tactics, techniques, and matrices are structured, and how to use it for detection and threat intel.

Flat white line-art of two layered AI model panels behind a gated barrier, on a Peacock background — Anthropic Claude Fable 5 release.

Artificial Intelligence (AI)

Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards

Anthropic's Fable 5 launches with “cyber safeguards” baked in — a framing that would, days later, become the center of a precedent-setting US export-control action.

Flat white line-art of a sealed toolbox opening above a row of code repositories, on an Olive background — Miasma toolkit open-sourced on GitHub.

Supply Chain Attack

Miasma Supply-Chain Worm Open-Sourced on GitHub

Miasma's open-sourcing turns the previous day's Microsoft-repo incident into the first instance of a much broader supply-chain threat any actor can now reproduce.

See all